From: InfoSec News (alertsinfosecnews.org)
Date: Wed Apr 04 2007 - 01:03:23 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

http://www.thanhniennews.com/education/?catid=4&newsid=26703

Source: Nguoi Lao Dong - Translated by A.N.O.N
April 3, 2007

Twelve out of a surveyed 22 Vietnamese securities companies could have
their websites hacked at any moment since they have serious loopholes, a
Hanoi web security center warned.

The Hanoi University of Technologys Bach Khoa Internetwork Security
Centre (BKIS) said Sunday that hackers could gain control of such sites
and falsify crucial stock information.

BKIS director Nguyen Tu Quang said misinformation posted by hackers
could cause investors to sell off their shares or rush to buy others.
Worse, they could tamper with transactions, accounts, and orders.

Many companies failed to pay attention to cyber security and it doesnt
need a superior hacker to hack into those sites.

BKIS had sent warnings to the companies but many of them had failed to
act.

Many securities company hired the same software firm to maintain their
websites, which could further facilitate hackers as the sites came with
the same loopholes.

The companies mostly trusted their software firm and did not themselves
do proper checks. He called on securities companies to hire web security
experts to watch over their sites.

Nguyen Huu Giap of the Hacker Vietnam Association earlier said around 90
percent of securities companies websites were vulnerable to hacking,
including that of the State Securities Commission and Hanoi Stock
Trading Center.

But since being informed last month, the two had plugged the loopholes
though many others had failed to do so, he added.

__________________________
Subscribe to InfoSec News
http://www.infosecnews.org

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]